$ rpki-client -vvf rpki.apnic.net/member_repository/A91F2DDD/B4A283629E1B11E98E1E4E5EC4F9AE02/ySTN5BVFl0tvV4MubGA7zIlm2eA.mft File: ySTN5BVFl0tvV4MubGA7zIlm2eA.mft (raw, json) Hash identifier: k2xTClfTjliqEpYuuNFVBPsUohK/nasnXrl7Ir3dZOo= Subject key identifier: AC:61:21:5E:54:B2:CB:86:21:A7:6B:5D:CF:CF:24:C0:76:A8:48:5A Authority key identifier: C9:24:CD:E4:15:45:97:4B:6F:57:83:2E:6C:60:3B:CC:89:66:D9:E0 Certificate issuer: /CN=A91F2DDD/serialNumber=C924CDE41545974B6F57832E6C603BCC8966D9E0 Certificate serial: 0319 Authority info access: rsync://rpki.apnic.net/repository/B527EF581D6611E2BB468F7C72FD1FF2/ySTN5BVFl0tvV4MubGA7zIlm2eA.cer Subject info access: rsync://rpki.apnic.net/member_repository/A91F2DDD/B4A283629E1B11E98E1E4E5EC4F9AE02/ySTN5BVFl0tvV4MubGA7zIlm2eA.mft Manifest number: 1169 Signing time: Sat 14 Jun 2025 17:39:34 +0000 Manifest this update: Sat 14 Jun 2025 17:39:33 +0000 Manifest next update: Sat 21 Jun 2025 17:39:33 +0000 Files and hashes: 1: ySTN5BVFl0tvV4MubGA7zIlm2eA.crl (hash: Z0rM29fCNUTKel0PolxuRGLTj4jL8J92qFkLMi7N9tY=) 2: 2FBEB0B0D5B011EC90A8A031C4F9AE02.roa (hash: dTotqn1MA4iFciet41gKXuxTQQQVUzcSiuTmgAsBCPA=) Validation: OK Signature path: rsync://rpki.apnic.net/member_repository/A91F2DDD/B4A283629E1B11E98E1E4E5EC4F9AE02/ySTN5BVFl0tvV4MubGA7zIlm2eA.crl rsync://rpki.apnic.net/member_repository/A91F2DDD/B4A283629E1B11E98E1E4E5EC4F9AE02/ySTN5BVFl0tvV4MubGA7zIlm2eA.mft rsync://rpki.apnic.net/repository/B527EF581D6611E2BB468F7C72FD1FF2/ySTN5BVFl0tvV4MubGA7zIlm2eA.cer rsync://rpki.apnic.net/repository/B527EF581D6611E2BB468F7C72FD1FF2/DmWk9f02tb1o6zySNAiXjJB6p58.crl rsync://rpki.apnic.net/repository/B527EF581D6611E2BB468F7C72FD1FF2/DmWk9f02tb1o6zySNAiXjJB6p58.mft rsync://rpki.apnic.net/repository/980652E0B77E11E7A96A39521A4F4FB4/DmWk9f02tb1o6zySNAiXjJB6p58.cer rsync://rpki.apnic.net/repository/980652E0B77E11E7A96A39521A4F4FB4/mBQsnQtBo7n7YD12mEgjb9HzGSQ.crl rsync://rpki.apnic.net/repository/980652E0B77E11E7A96A39521A4F4FB4/mBQsnQtBo7n7YD12mEgjb9HzGSQ.mft rsync://rpki.apnic.net/repository/838DB214166511E2B3BC286172FD1FF2/mBQsnQtBo7n7YD12mEgjb9HzGSQ.cer rsync://rpki.apnic.net/repository/838DB214166511E2B3BC286172FD1FF2/C5zKkN0Neoo3ZmsZIX_g2EA3t6I.crl rsync://rpki.apnic.net/repository/838DB214166511E2B3BC286172FD1FF2/C5zKkN0Neoo3ZmsZIX_g2EA3t6I.mft rsync://rpki.apnic.net/repository/apnic-rpki-root-iana-origin.cer Signature path expires: Sat 21 Jun 2025 17:13:28 +0000 Certificate: Data: Version: 3 (0x2) Serial Number: 793 (0x319) Signature Algorithm: sha256WithRSAEncryption Issuer: CN=A91F2DDD, serialNumber=C924CDE41545974B6F57832E6C603BCC8966D9E0 Validity Not Before: Jun 14 17:39:33 2025 GMT Not After : Jun 21 17:39:33 2025 GMT Subject: CN=684db3d5-92fa Subject Public Key Info: Public Key Algorithm: rsaEncryption RSA Public-Key: (2048 bit) Modulus: 00:b2:f6:57:6d:07:13:f4:ef:69:9b:c3:3e:75:c6: 34:0c:e8:90:23:d0:8c:fd:c1:00:08:e1:30:0f:fc: be:b9:a5:22:11:49:98:09:c8:2f:83:13:07:e1:38: 87:e6:41:95:3e:eb:95:fb:15:dc:5b:31:d7:f0:4f: 6c:c1:63:73:1d:3b:d4:d1:92:a5:3e:7a:84:bf:0d: 30:26:05:fe:24:3d:69:59:1f:be:8e:29:b2:30:10: 97:ef:4d:0b:b2:06:e1:a9:28:df:cd:48:d3:25:5c: b4:0b:f2:ce:6e:67:c8:fc:3b:ab:db:f1:55:55:0e: 44:bf:ee:59:b7:5a:9f:bc:27:42:8a:f8:85:ad:3a: 27:9d:76:27:1b:05:6b:76:12:69:a0:64:83:38:a3: fe:e0:33:00:de:19:bc:6d:82:74:7c:5b:a0:9b:fe: 3f:ed:31:49:0d:88:40:d2:7b:d7:d0:55:57:13:b2: 69:39:7a:8c:41:ff:1f:44:0a:90:aa:9a:f3:c2:85: 2b:94:a8:d1:80:c9:3c:84:e5:1f:1a:08:34:5b:c8: 21:fc:21:15:c5:dd:47:c5:35:96:e0:7f:71:c6:2d: 1b:de:bc:5b:25:1a:69:7c:3c:36:32:8f:6b:e5:63: 9c:77:00:33:eb:d1:30:e1:c5:1f:21:fd:80:96:97: 9b:db Exponent: 65537 (0x10001) X509v3 extensions: X509v3 Subject Key Identifier: AC:61:21:5E:54:B2:CB:86:21:A7:6B:5D:CF:CF:24:C0:76:A8:48:5A X509v3 Authority Key Identifier: keyid:C9:24:CD:E4:15:45:97:4B:6F:57:83:2E:6C:60:3B:CC:89:66:D9:E0 X509v3 Key Usage: critical Digital Signature X509v3 CRL Distribution Points: Full Name: URI:rsync://rpki.apnic.net/member_repository/A91F2DDD/B4A283629E1B11E98E1E4E5EC4F9AE02/ySTN5BVFl0tvV4MubGA7zIlm2eA.crl Authority Information Access: CA Issuers - URI:rsync://rpki.apnic.net/repository/B527EF581D6611E2BB468F7C72FD1FF2/ySTN5BVFl0tvV4MubGA7zIlm2eA.cer X509v3 Certificate Policies: critical Policy: ipAddr-asNumber CPS: https://www.apnic.net/RPKI/CPS.pdf Subject Information Access: Signed Object - URI:rsync://rpki.apnic.net/member_repository/A91F2DDD/B4A283629E1B11E98E1E4E5EC4F9AE02/ySTN5BVFl0tvV4MubGA7zIlm2eA.mft RPKI Notify - URI:https://rrdp.apnic.net/notification.xml sbgp-autonomousSysNum: critical Autonomous System Numbers: inherit sbgp-ipAddrBlock: critical IPv4: inherit IPv6: inherit Signature Algorithm: sha256WithRSAEncryption 40:75:b7:f2:22:13:6d:e3:3d:8b:6e:84:09:46:20:f7:44:c6: 5b:84:69:da:84:e7:45:2d:94:49:6d:f1:02:fc:6e:04:1f:d5: f2:6a:49:8f:3e:19:26:1d:0c:39:fe:6b:33:23:b4:2a:16:35: 40:01:9b:a1:4f:fc:88:72:d4:20:0c:86:8d:f0:4c:a1:f4:3f: 6e:39:99:4b:72:45:ed:95:98:8e:5f:ba:42:0c:8a:e5:ec:ae: 32:77:47:85:b9:2e:fa:f9:d5:ae:4e:c4:f5:0d:24:ec:4a:fb: 58:f3:53:2b:48:3f:f0:b0:43:41:d0:d9:15:b7:c4:60:e3:cb: a2:47:86:6c:dd:42:dc:6e:6a:82:d1:54:73:d4:d9:7b:ea:2d: 67:e5:0c:23:f9:9d:90:81:83:d0:24:0c:c5:80:b2:34:01:c6: bf:01:e2:5e:fe:f5:58:6f:97:57:03:4d:76:c8:92:ff:88:97: 42:b2:70:18:35:0a:a3:7c:c8:f2:c8:85:98:36:be:a6:48:9e: 88:ea:0e:2f:39:a9:07:b2:c2:13:8b:85:bf:4e:b0:65:85:1a: a4:4b:3f:29:77:07:ab:4d:40:97:bf:2e:d4:39:b7:ec:8c:95: ff:e9:a4:e4:76:ef:c2:d3:e9:25:51:11:5e:12:25:da:2c:d5: db:09:74:e4 -----BEGIN CERTIFICATE----- MIIFhDCCBGygAwIBAgICAxkwDQYJKoZIhvcNAQELBQAwRjERMA8GA1UEAxMIQTkx RjJEREQxMTAvBgNVBAUTKEM5MjRDREU0MTU0NTk3NEI2RjU3ODMyRTZDNjAzQkND ODk2NkQ5RTAwHhcNMjUwNjE0MTczOTMzWhcNMjUwNjIxMTczOTMzWjAYMRYwFAYD VQQDEw02ODRkYjNkNS05MmZhMIIBIjANBgkqhkiG9w0BAQEFAAOCAQ8AMIIBCgKC AQEAsvZXbQcT9O9pm8M+dcY0DOiQI9CM/cEACOEwD/y+uaUiEUmYCcgvgxMH4TiH 5kGVPuuV+xXcWzHX8E9swWNzHTvU0ZKlPnqEvw0wJgX+JD1pWR++jimyMBCX700L sgbhqSjfzUjTJVy0C/LObmfI/Dur2/FVVQ5Ev+5Zt1qfvCdCiviFrTonnXYnGwVr dhJpoGSDOKP+4DMA3hm8bYJ0fFugm/4/7TFJDYhA0nvX0FVXE7JpOXqMQf8fRAqQ qprzwoUrlKjRgMk8hOUfGgg0W8gh/CEVxd1HxTWW4H9xxi0b3rxbJRppfDw2Mo9r 5WOcdwAz69Ew4cUfIf2Alpeb2wIDAQABo4ICqDCCAqQwHQYDVR0OBBYEFKxhIV5U ssuGIadrXc/PJMB2qEhaMB8GA1UdIwQYMBaAFMkkzeQVRZdLb1eDLmxgO8yJZtng MA4GA1UdDwEB/wQEAwIHgDCBgwYDVR0fBHwwejB4oHagdIZycnN5bmM6Ly9ycGtp LmFwbmljLm5ldC9tZW1iZXJfcmVwb3NpdG9yeS9BOTFGMkRERC9CNEEyODM2MjlF MUIxMUU5OEUxRTRFNUVDNEY5QUUwMi95U1RONUJWRmwwdHZWNE11YkdBN3pJbG0y ZUEuY3JsMH4GCCsGAQUFBwEBBHIwcDBuBggrBgEFBQcwAoZicnN5bmM6Ly9ycGtp LmFwbmljLm5ldC9yZXBvc2l0b3J5L0I1MjdFRjU4MUQ2NjExRTJCQjQ2OEY3Qzcy RkQxRkYyL3lTVE41QlZGbDB0dlY0TXViR0E3eklsbTJlQS5jZXIwSgYDVR0gAQH/ BEAwPjA8BggrBgEFBQcOAjAwMC4GCCsGAQUFBwIBFiJodHRwczovL3d3dy5hcG5p Yy5uZXQvUlBLSS9DUFMucGRmMIHFBggrBgEFBQcBCwSBuDCBtTB+BggrBgEFBQcw C4ZycnN5bmM6Ly9ycGtpLmFwbmljLm5ldC9tZW1iZXJfcmVwb3NpdG9yeS9BOTFG MkRERC9CNEEyODM2MjlFMUIxMUU5OEUxRTRFNUVDNEY5QUUwMi95U1RONUJWRmww dHZWNE11YkdBN3pJbG0yZUEubWZ0MDMGCCsGAQUFBzANhidodHRwczovL3JyZHAu YXBuaWMubmV0L25vdGlmaWNhdGlvbi54bWwwFQYIKwYBBQUHAQgBAf8EBjAEoAIF ADAhBggrBgEFBQcBBwEB/wQSMBAwBgQCAAEFADAGBAIAAgUAMA0GCSqGSIb3DQEB CwUAA4IBAQBAdbfyIhNt4z2LboQJRiD3RMZbhGnahOdFLZRJbfEC/G4EH9XyakmP PhkmHQw5/mszI7QqFjVAAZuhT/yIctQgDIaN8Eyh9D9uOZlLckXtlZiOX7pCDIrl 7K4yd0eFuS76+dWuTsT1DSTsSvtY81MrSD/wsENB0NkVt8Rg48uiR4Zs3ULcbmqC 0VRz1Nl76i1n5Qwj+Z2QgYPQJAzFgLI0Aca/AeJe/vVYb5dXA012yJL/iJdCsnAY NQqjfMjyyIWYNr6mSJ6I6g4vOakHssITi4W/TrBlhRqkSz8pdwerTUCXvy7UObfs jJX/6aTkdu/C0+klURFeEiXaLNXbCXTk -----END CERTIFICATE-----Generated at Sat Jun 14 19:23:37 2025 by rpki-client